If you are looking to excel and make a difference, take a closer look at us…

Summary:

The Security Engineer is a critical role responsible to driving and executing the security engineering strategy across the organization. This individual will play a key role in designing, implementing, and maintaining secure systems, applications, and infrastructure. The ideal candidate is a highly motivated and experienced security professional with a strong understanding of security best practices, emerging threats, and modern technologies.

Responsibilities:

Technical (70%)

• Architectures: Design and implement new security solutions and enhancements to existing controls for secure architectures for applications, systems, and infrastructure, including cloud, on-premises, and hybrid environments. Develop architectural artifacts and proactive solution architecture to solve for complex business problems based on yearly roadmap planning, incoming security work and domain needs.

• Controls: Design, implement, and maintain security controls, including Firewalls, Web Application Firewalls (WAF), Endpoint Detection and Response (EDR) solutions (e.g., FireEye), Intrusion Detection/Prevention Systems (IDS/IPS), VPNs and Web Application Firewalls (WAFs).

• Develop and enforce network segmentation strategies, Zero Trust principles, and access control policies (e.g., Network Access Control (NAC) systems).

• Refresh: Contribute to the execution of security technology refresh initiatives, ensuring systems remain secure and performant.

• Automation: Develop and implement automated security controls and processes, such as ID management, vulnerability scanning, threat intelligence feeds, and security information and event management (SIEM) rules, to improve efficiency and scalability.

• Application: Define standards for data protection, encryption, and privacy compliance

• Incident Response: Contribute to incident response activities and participate in threat hunting exercises to identify and mitigate emerging threats.

• Platform: Design and deploy robust, scalable security tools and infrastructure to automate risk reduction and enhance the organization's defence posture.

• Operations: Investigate complex, and sometimes historic practices/solutions to determine gaps and needed improvements and facilitate migration to a preferred state.

Responsibilities: Leadership (30%)

• Leadership: Provide Subject Matter Expertise to internal and external stakeholders. Collaborate with business and internal customers to understand their security needs and design tailored solutions that address their challenges.

• Project Management: Lead the planning, execution, and successful delivery of complex security projects, such as large-scale firewall deployments, new security tool integrations, and major policy overhauls.

• Analytical: Translate technical risks into business context and communicate security risks and compliance gaps clearly to various stakeholders. Support security risk evaluation, remediation planning, and process improvements alongside technical and business teams.

• New Initiatives: Participate on various projects and initiatives providing security guidance & direction while ensuring adherence to security policies & standards.

• Cross-Functional Collaboration: Collaborate closely with respective IT teams (e.g., Network, Database, Application, IT Risk) and business units to proactively identify and address security concerns.

• Change Validation and Quality Assurance: Validate security-related changes and configurations before deployment to production environments, ensuring minimal risk and adherence to change management policies.

• Stay abreast of emerging security threats and technologies: Research and evaluate new security technologies and best practices to enhance the organization's security posture.

• Compliance and Maintenance: Ensure adherence to internal policies, industry best practices, and regulatory guidelines, such as Bank Negara Malaysia's RMiT and ASEAN regional banking guidelines.

• Culture: Help build a security-aware culture where trust and privacy are embedded in how we work

• Documentation: Develop and maintain comprehensive documentation of engagements performed, solutions provided, and risks and/or issues identified.

Skills & Experience We Are Looking For:

• Bachelor's degree in Computer Science, Information Security, or a related field.

• 7+ years of experience in information security, with at least 3 to 5 years in a security engineering role.

• At least 3-5 years in a dedicated security technical consulting and leadership capacity, preferably within the financial services industry.

• Strong understanding of security principles, including threat modelling, risk assessment, and vulnerability management.

• Proven hands-on experience and in-depth knowledge of managing and operating a wide range of security technologies (e.g., Firewalls, WAF, IPS/IDS, Endpoint Security, NAC, SIEM integration).

• Strong knowledge of IPv4/IPv6, switching technologies, routing protocols, TCP/IP, DNS, DHCP, ARP, VLAN, and subnetting.

• Problem solver who can work independently and collaboratively with support available when needed

• Open to mentoring others and being mentored and comfortable managing multiple priorities.

• Strong analytical, problem-solving and communication skills.

• Excellent written and verbal communication skills.

• Ability to work independently and as part of a team.

• Strong work ethic and a passion for security.

Preferred Qualifications:

• Relevant security certifications (e.g., CISSP, CISM, CISA, CEH).

• Experience with scripting languages (e.g., Python, Bash, Powershell).

• Experience with security automation and orchestration tools.

For more job opportunities, please go to HLB Careers: https://hlb.wd3.myworkdayjobs.com/HLBCareers/

We appreciate your application and will be in touch with shortlisted candidates regarding next steps.

Realise your full potential at Hong Leong Bank by applying now.